Olivia
Online
Kn1ght
@hrxknight
Web Penetration Tester, Security researcher, bug bounty hunter ๐
Vietnamese ๐ป๐ณ๐ป๐ณ๐ป๐ณ
Joined August 2024
173 Following
9 Followers
36 Posts
I have spent some time this past day to investigate NodeJS source code and how a typical process tree from a react/next.js app will look like.
If you are building detections for React2Shell give this a read. as it'll help you identify the right strings to use to filter down FPs and what anomalous look might like.
https://t.co/pSSYRFir6O
@F4tM4n2k Nice bro ๐
๐จXSS Found๐จ
1โฃ katana -u "url" -d 5 -ps -pss waybackarchive,commoncrawl,alienvault -kf -jc -fx -ef woff,css,png,svg,jpg,woff2,jpeg,gif,svg thx man @coffinxp7 ๐ฅ
2โฃ nuclei -t /string/dast/ -dast -headless
3โฃ Confirm payloads!
@coffinxp7 Brother, some time ago I made this tool for when you're targeting a large number of subdomains. The idea was to create a fast tool for discovery.
https://t.co/7CEgnOrwuy
#bugbounty #hacking #cybersecurity
After going through all the comments and questions about setting up IDN domains and using Punycode based emails, I finally made a video that covers everything step by step. Iโm confident this will help many of you land some serious bounties!
https://t.co/EcGMaLGlbP
This #NahamCon2025 talk has generated over $50,000 in bounties for @YShahinzadeh and a few other hackers: Puny-Code, 0-Click Account Takeover.
๐ฅ๐๐ผhttps://t.co/BsVhu4Vold
๐ Bug Bounty Web Checklist
Track your web pentesting progress by checking each subcategory.
https://t.co/fuMRx2BwUl
๐ Detailed Checklist: Android APK Pentesting Checklist
Checklist: https://t.co/QoSljusi0g
#infosec
"Business logic allows any user to be blocked from creating an account"
https://t.co/pn3QLCLcA1
#bugbounty #bugbountytips
API Hacking - Cracking JWT Tokens
https://t.co/jnlggOLHzK
Pre Account Takeover
https://t.co/q8ZHZMVJyx
XSS With Polyglots
https://t.co/U24Xbb3d0W
React JS SourceMaps to XSS
https://t.co/qolAwpZcUf
Bypass AI Powered Wafs
https://t.co/BdMfu0gaQS
#bugbounty #bugbountytips #bugbountytip #infosec #xss #OWASP #redteam #pentest #hackerone #bugcrowd
Want to master client-side bugs? ๐
Check out this extensive GitHub repository with tens of different resources curated by @zomasec!
๐ https://t.co/9PULUiwZvp
Vibe coding? Nah, Hacking with a vibe ๐๐ฝ
While learning and practicing website application security and exploitation, also learn to hack APIs effectively.
https://t.co/9lE8GMjdKX
SQL Injection
๐Monthly Giveaway๐
Hack The Box 6-month VIP+
- Follow, Like, and Retweet to join!
- Winners will be picked randomly on 5 June.
#hackthebox #giveaway #projectsekaictf
๐ฅ ๐๐ ๐๐๐ ๐๐๐๐ฆ๐ข๐ง๐ ๐๐ฅ๐๐ฒ๐ ๐ซ๐จ๐ฎ๐ง๐ ๐๐๐๐ฌ from @Microsoft
12 free labs to up-level your hacking skills from the โAI Red Teaming in Practiceโ Black Hat training, covering:
- Credential exfiltration
- Extracting a secret from the metaprompt
- Indirect prompt injection
- and more!
Super cool that this was open sourced, huge shout-out to Dr. Amanda Minnich (AIRT), Gary L., Martin Pouliot, and anyone else involved ๐
๐ https://t.co/LVNZX4LDFQ
https://t.co/irbSntOPYb
Want to quickly and easily import BChecks and Bambdas to your library?
๐ Check out Extensibility Helper on the BApp Store!
๐ Pull scripts directly from the PortSwigger community repositories, or provide your own for a custom store experience.
Built a Burp Suite extension to run SQLmap directly from the GUI.
No more saving HTTP requests + jumping to terminal.
Just:
โ Mark param with *
โ Right-click โ Send to SQLmap
โ Pick options โ Run
Linux-only for now. Windows support coming soon.
Full write-up: https://t.co/TqTfwOdWk3
#BurpSuite #SQLmap #CyberSecurity #BugBounty #RedTeam #infosec
Last Seen Users on Sotwe
ุนุงุดููุฉ ุงูุฌู.ููุณ
Seen from United Kingdom
Kerry LH๐ซ 
Seen from United States
Abiskar X Boy
Seen from United States
ู
ุตุนุจุจmosab
Seen from Oman
ๅฐๅฑฑ ๐ซง
Fun Fun Fun
Seen from Turkey
Porn Sudan
Hatice35
Seen from Turkey
wmafvideo
Seen from Indonesia
butterfly๐ฆ๐ฆ๐ฆ
Seen from Turkey
Most Popular Users
Elon Musk
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.9M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.3M followers
Taylor Swift
@taylorswift13
81.1M followers
Lady Gaga
@ladygaga
72.7M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.3M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62M followers
CNN
@cnn
61.9M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.4M followers